discuss unserializing user data preg_* and /e

These seem to come up frequently enough that we should talk about it: